[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-developers] phpGroupWare 0.9.16.009 Security and Bug Fix R
|
From: |
Dave Hall |
|
Subject: |
[Phpgroupware-developers] phpGroupWare 0.9.16.009 Security and Bug Fix Release is out |
|
Date: |
Mon, 21 Nov 2005 13:21:30 +1100 |
Hi all,
You are encouraged to update to the latest version of phpGroupWare -
0.9.16.009. The release contains several major bug fixes as well as
some important security fixes.
You can grab the new version from -
http://sourceforge.net/project/showfiles.php?group_id=7305
Or update from cvs
$ cd /path/to/phpgroupware
$ export CVS_RSH=ssh
$ cvs update -dP
Changelog is as follows:
Fixes for the following security issues:
* phpSysInfo
- XSS CVE-2005-0870
- arbitrary file inclusion CVE-2005-3347
- anti XSS measure CVE-2005-3348
* FUDForum
- arbitary code execution SA16627
Major bug fixes:
- LDAP account returns only phpGroupWare accounts
- accounts list pages and sorts properly
- Next account id is properly generated
- First group shows properly in ACL manager
- Calendar footer now shows again
- Calendar alarms can be set, editted and viewed
- Fix apps to work with anti XSS code from 007/8
- News Admin
- Sitemgr
Additional languages and translated phrases
We hope to have our website back up and running in the 24hours, so for
the inconvenience this may be causing people.
Cheers
Dave
--
Dave Hall (aka skwashd)
API Coordinator
phpGroupWare
e address@hidden
w phpgroupware.org
- [Phpgroupware-developers] phpGroupWare 0.9.16.009 Security and Bug Fix Release is out,
Dave Hall <=